Stream: Security and Privacy
Topic: AuditEvent
Roel Barelds (Jun 10 2021 at 07:24):
In the Netherlands we want to use the AuditEvent for logging purposes. Is there an overview if this resource meets the requirements of the ISO 27789 ‘Audit trails for electronic health records.
John Moehrke (Jun 15 2021 at 11:36):
ISO 27789 is a profile upon the abstract model from which the FHIR AuditEvent is modeled. You will notice that ISO 27789 uses the element names defined by the DICOM Audit Message schema. The FHIR AuditEvent has a mapping to those element names
http://hl7.org/fhir/auditevent-mappings.html#dicom
Jens Villadsen (Aug 09 2021 at 09:37):
@John Moehrke what happened here:
image.png
Jens Villadsen (Aug 09 2021 at 09:37):
can you point to some of the jira's that would say why this was done?
Jens Villadsen (Aug 09 2021 at 09:46):
found it : https://jira.hl7.org/browse/FHIR-17412
John Moehrke (Aug 09 2021 at 12:36):
@Jens Villadsen note there is a block vote that is being formed that is going to even more radically change AuditEvent in R5.
Jens Villadsen (Aug 09 2021 at 20:46):
Got a link?
John Moehrke (Aug 09 2021 at 21:04):
we are developing the block vote during the weekly FHIR Security calls. The agenda/minutes from today includes the jira filter for the current block - https://confluence.hl7.org/display/SEC/2021-08-09+FHIR-Security+Meeting+Agenda
Jens Villadsen (Aug 10 2021 at 06:25):
The filters are not publicly available:
image.png
John Moehrke (Aug 10 2021 at 12:58):
hm, I guess I need some jira magic
Lloyd McKenzie (Aug 10 2021 at 13:18):
You can share your filter - just click on the saved name and make it public
John Moehrke (Aug 10 2021 at 13:37):
thanks @Lloyd McKenzie . I think I just now made them public (to hl7 users)
John Moehrke (Aug 10 2021 at 13:39):
@Jens Villadsen can you see them now?
Jens Villadsen (Aug 10 2021 at 13:45):
nop
John Moehrke (Aug 10 2021 at 13:50):
I have the viewers set to hl7-trusted-users... I presumed that anyone with an HL7 logon would have view
Jens Villadsen (Aug 10 2021 at 13:51):
nop - going to: https://jira.hl7.org/issues/?jql=filter%3D14927 gives
image.png
Jens Villadsen (Aug 10 2021 at 13:51):
and I'm logged in
John Moehrke (Aug 10 2021 at 14:00):
how about now?
Lloyd McKenzie (Aug 10 2021 at 15:09):
HL7 trusted users is just co-chairs and facilitators.
John Moehrke (Aug 10 2021 at 15:16):
I changed it to "any logged-in user"
Jens Villadsen (Aug 10 2021 at 18:55):
where does that put me (I'm affiliate chair)
John Moehrke (Aug 10 2021 at 18:57):
can you see them now?
Jens Villadsen (Aug 10 2021 at 18:57):
nope
Jens Villadsen (Aug 10 2021 at 18:58):
sry
Jens Villadsen (Aug 10 2021 at 18:58):
now i can
Jens Villadsen (Aug 10 2021 at 18:58):
woop woop
John Moehrke (Aug 10 2021 at 18:58):
I just opened it to anyone on the web
John Moehrke (Aug 10 2021 at 18:59):
I don't know that is a problem, but it seems the previous one should have worked for anyone with a jira account
Jens Villadsen (Aug 10 2021 at 18:59):
the filter is finally available to all the (untrusted affiliate chair) users - hurray
Jens Villadsen (Aug 10 2021 at 19:25):
@John Moehrke - btw - what is a 'block vote'?
John Moehrke (Aug 10 2021 at 19:37):
a block vote is a way to bunch a set of CR with resolutions. With the intent that the block will be sent to the workgroup membership for vote. This is alternative to voting during the workgroup calls/meetings on each one. I have been working each one in the weekly meeting with Lloyd present when possible. So I have high confidence, but want high consensus. I wanted to do a block vote with this group for two reasons: First, because I wanted to deal with them all at once, since there is significant overlap; second, to give the workgroup members plenty of time to think of the ramifications of the changes proposed in the block. When a block goes to vote, any member can request that a CR can be removed from the block prior to vote. --- I would also send notification of the block vote to the security and privacy zulip stream. You likely have seen this done with other groups.
Last updated: Apr 12 2022 at 19:14 UTC
